what you don't know can hurt you
Showing 1 - 24 of 24 RSS Feed

Files Date: 2005-05-07

TOR Virtual Network Tunneling Tool 0.0.9.9
Posted May 7, 2005
Authored by Roger Dingledine | Site tor.eff.org

Tor version 0.0.9.9 is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).

Changes: various bugfixes.
tags | tool, remote, local, peer2peer
MD5 | a9979fc4d20d7e3734d7b8a51e60a7d5
codebug-9.txt
Posted May 7, 2005
Authored by Alberto Trivero | Site codebug.org

Codebug Labs Advisory 09 - myBloggie 2.1.1 multiple vulnerabilities. Full path disclosure, Cross-Site Scripting, content deletion, and SQL injection vulnerabilities exist in myBloggie 2.1.1.

tags | advisory, vulnerability, xss, sql injection
MD5 | faa2ad16d1f3fdcab9ac1f2a23ab847b
google_adsense_css.txt
Posted May 7, 2005
Authored by Lostmon | Site lostmon.blogspot.com

Google adsense is vulnerable to remote cross-site scripting attacks. This is due to several name and message fields not being properly validated.

tags | advisory, remote, xss
MD5 | e3bd33d16f26553b0a93bda258786acb
ICMP3Code4.c
Posted May 7, 2005
Authored by Norwegian

Simple tool that transmits ICMP type 3 code 4 messages to a given destination, sometimes resulting in the connection being terminated or severely hampered. Reported to work against Linux boxes.

tags | advisory
systems | linux
MD5 | e6a377a6c1d054a320df6bde91b13023
ActiveFax.txt
Posted May 7, 2005
Authored by cyqex

ActiveFax, a network-enabled fax transmission/reception system, contains a FTP server which can be used to perform FTP bounce attacks (which are useful for conducting nmap portscans in an anonymous way, among other things).

tags | advisory
MD5 | 5905ad2b7f38b05d68f4ca29b8c6145d
dc_phpcoin.txt
Posted May 7, 2005
Authored by Diabolic Crab | Site hackerscenter.com

phpCoin versions 1.2.2 and lower contain multiple SQL injection vulnerabilities. Example exploit URL included in advisory.

tags | exploit, vulnerability, sql injection
MD5 | d5249a8881994826b4f915cb875750eb
tripp_test.1c.tar.gz
Posted May 7, 2005
Authored by poplix | Site tripp.dynalias.org

TRIPP is a utility to rewrite outgoing IP packets. Since it can rewrite both header and payload data, it combines functionality found in iptables as well as netsed. This can be useful for performing replay attacks, altering your own OS fingerprint, or for bypassing remote firewalls.

tags | remote
systems | unix
MD5 | 46a025bada982f424d31560a4ee3c0f2
phpcart_price_manipulation.txt
Posted May 7, 2005
Authored by Lostmon | Site lostmon.blogspot.com

PHPcart allows for user-manipulation of the price's of items in the shopping cart.

tags | advisory
MD5 | 9c193e63a437938b6aba3b9e7c18071b
dc_metacart_eshop8_sqlinj.txt
Posted May 7, 2005
Authored by Diabolic Crab | Site hackerscenter.com

Metacart e-Shop V-8 contains multiple SQL injection vulnerabilities. Advisory contains example exploit URLs.

tags | advisory, vulnerability, sql injection
MD5 | 94a8b08b23da45fcdd705ff45ae1f472
dc_MetaCart2PayPal_sqlinj.txt
Posted May 7, 2005
Authored by Diabolic Crab | Site hackerscenter.com

Metacart2 for PayPal contains multiple SQL injection vulnerabilities. Example exploit URLs included in advisory.

tags | advisory, vulnerability, sql injection
MD5 | c0a2b0a9b188af0b2535ba7c259eeb84
dc_MetaCart2SQL_sqlinj.txt
Posted May 7, 2005
Authored by Diabolic Crab | Site hackerscenter.com

MetaCart2 for SQL Server, Special Edition U.K. contains multiple SQL injection vulnerabilities. Example exploit URL included in advisory.

tags | advisory, vulnerability, sql injection
MD5 | ba77f0be54bedc5ecfccabe9314b1bc9
dc_metacart_sqling.txt
Posted May 7, 2005
Authored by Diabolic Crab | Site hackerscenter.com

Multiple SQL injection vulnerabilities in metacart2 for payflow. Example exploit URL included in advisory.

tags | exploit, vulnerability, sql injection
MD5 | 36ed40131025266df8227f13f7a39b67
dc_metabid_sqlinj.txt
Posted May 7, 2005
Authored by Diabolic Crab | Site hackerscenter.com

Metabid contains multiple SQL injection vulnerabilities. Username / Password verification can be bypassed via SQL injection, and more issues exist. Advisory contains example exploit URL.

tags | exploit, vulnerability, sql injection
MD5 | cf175e30c0afdd373d2ead33e631abcb
ha_SQWebmail_css.txt
Posted May 7, 2005
Authored by Zinho | Site hackerscenter.com

SQWebMail is vulnerable to Cross-site scripting / HTTP Response Splitting.

tags | advisory, web, xss
MD5 | 631374e54e3e606fc767f459a6f43f1f
yawcssibp.txt
Posted May 7, 2005
Authored by Zinho | Site hackerscenter.com

Yet Another "Why CSS Is Bad" Paper.

tags | paper, web
MD5 | 05906032ff6fe2c5ab76661c00cca910
yaggs.c
Posted May 7, 2005
Authored by ch0mik

Sniffer for "Gadu Gadu", which is a chat program in the style of MS Messenger/Yahoo Messenger, but aimed at Poland / Polish-speaking people.

tags | tool, sniffer
MD5 | 2a67a7894781e7129c19d7ac57b13572
snmppd_dos.txt
Posted May 7, 2005
Authored by Xpl017Elz | Site slava.local.nsys.by

Snmppd format string vulnerability. Snmppd (used by / with Nagios) may contain a format-string vulnerability in unsafe syslog() calls.

tags | advisory
MD5 | 37deecb480480697a0e9cc7a9aaf3096
cirt-31-advisory.pdf
Posted May 7, 2005
Authored by CIRT.DK | Site cirt.dk

Novell Nsure Audit contains a Denial of Service vulnerability. The webadmin.exe module, which listens on TCP port 449, becomes unresponsive when a bruteforce attack is conducted against it.

tags | advisory, denial of service, tcp
MD5 | db8f957b94f02fe47549da6b138d242a
DMA_2005-0423a_.txt
Posted May 7, 2005
Authored by Kevin Finisterre | Site digitalmunition.com

Nokia Affix Bluetooth Integer Underflow. Affix is a Bluetooth Protocol Stack for Linux that was developed by the Nokia Research Center, and implements Bluetooth protocols. This may lead to a local root compromise.

tags | advisory, local, root, protocol
systems | linux
MD5 | 430c4aac6c74a3fd38023d13b43c6e63
7330ecart.pl
Posted May 7, 2005
Authored by Emanuele Gentili

E-Cart remote command execution exploit. Executes a reverse shell using a buggy open() call in E-Cart.

tags | exploit, remote, shell
MD5 | 25108dd22eaa16d1702602c0954cc226
StorePortal2.63_sqlinj.txt
Posted May 7, 2005
Authored by Diabolic Crab | Site digitalparadox.org

Store Portal 2.63 is vulnerable to SQL injection. Example exploit URL included in advisory.

tags | exploit, sql injection
MD5 | d8a52a5b3ad9b0dccf64c6f771d81116
E-Cartv1.1_cmdexec.txt
Posted May 7, 2005
Authored by Nicolas Montoza | Site soulblack.com.ar

E-Cart v1.1 Remote Command Execution advisory. The file index.cgi contains a vulnerable open() call, resulting in remote command execution with the CGI privileges.

tags | advisory, remote, cgi
MD5 | 5fefa327438c26531ae6ed3afefa3985
dc_BKForum_4.txt
Posted May 7, 2005
Authored by Diabolic Crab | Site digitalparadox.org

BK Forum v.4 is vulnerable to multiple SQL injection vulnerabilities. Advisory includes example exploit URL.

tags | advisory, vulnerability, sql injection
MD5 | 0431c155f0645753def5c709a6102ae1
javascriptFun.txt
Posted May 7, 2005
Authored by Dr_aMado

This tutorial is an overview of how javascript can be used to bypass html forms and how it can be used to override cookie/session authentication.

tags | paper, javascript
MD5 | 9dff177e25d94281c9a2dab498241834
Page 1 of 1
Back1Next

File Archive:

March 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    15 Files
  • 2
    Mar 2nd
    5 Files
  • 3
    Mar 3rd
    3 Files
  • 4
    Mar 4th
    25 Files
  • 5
    Mar 5th
    20 Files
  • 6
    Mar 6th
    16 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    12 Files
  • 9
    Mar 9th
    3 Files
  • 10
    Mar 10th
    4 Files
  • 11
    Mar 11th
    23 Files
  • 12
    Mar 12th
    12 Files
  • 13
    Mar 13th
    12 Files
  • 14
    Mar 14th
    19 Files
  • 15
    Mar 15th
    12 Files
  • 16
    Mar 16th
    3 Files
  • 17
    Mar 17th
    1 Files
  • 18
    Mar 18th
    15 Files
  • 19
    Mar 19th
    22 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close